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(54) Software copying system 

(57) A software copying system wtitch enables cop- 
yrighted software recorded in a master storage medium 
(1; 60) to be copied to a user's target storage medium 
(3; 40) in a legitimate manner. A contents identifier read- 
ing unit (2) reads out a software identifier (SIDi; DID) 
from the master storage medium (1 ; 60). while a storage 
medium identifier reading unrt (4) reads out a storage 
medium identifier (IDk; Mid) from the target storage 
medium (3; 40). The two kientifiers are then sent to a 
central site (5) which manages licenses for the right to 
copy software products. At the central site (5). a signa- 
ture generating unit (6) produces a first signature (CS) 
from those identifiers and sends it back to the user's 
^e, where a signature writing unit (7) writes the 
received signature into the target storage medium (3; 
40). A signature generating/comparing unit (8) pro- 
duces a second signature (CS*) out of the same identifi- 
ers as those sent to the central site (5), and compares it 
with the f irst signature (CS) stored in the target storage 
medium (3; 40). A data copying unit (9) copies the sub- 
ject software data file from the master storage medium 
(1; 60) to the target storage medium (3; 40). only when 
the first and second signatures (CS. CS) coincide with 
each other. 
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Description 

BACKGROUND OF THE INVEMTIQM 

1. Field of the Invention 

The present invention relates to software copying 
systems, and more specifically, to a softyvare copying 
system which enables copyrighted software to be dupli- 
cated in a user's storage medium In a legitimate man- 
ner. 

2. Desootw o> the Related Art 

A wie vwiety oi software distnljution methods 
have becur^p m/^diUm m^ lecent years, and the con- 
sumers can pi^chM Mfrware products which are 
stored m ^omt itora^* med« sudi as floppy disks, 
compact 0GC readonly fnenfK>ries (CD-ROMs), and 
semiconductor nr^emofies They can also buy some soft- 
ware products (Ob ft! on-ytm shops by downloading via 
networks Mo«i oi sucn commercial software products, 
however, can be copied ir«o otfier storage media easily. 
This means ttvit they ate exposed to the potential risk of 
lllega] dipkcation. or sofrware piracy, which has become 
a serious problem lor copyriohted software. 

As to the software distrtxjtion methods for oonpu- 
ter applications. cMionaries. audio and video data, etc., 
one of tiie conventional ntethods is to distribute them In 
a CD-ROM that is electronically tocked by a protection 
key. When a user is interested in a certain software 
product, he/she makes contact with a central site that is 
dealing that product. The user then takes a necessary 
procedure to purchase H. and in tum receives a key per- 
taining to the product. By opening the protected soft- 
ware archive with that key, the user can finally install it 
into his/her system. 

Another method of software distribution uses a wri- 
table storage medium that contains some license-spe- 
ctfic identification infomnaton burned in advance, which 
Information is managed at the central site lor Ocensing 
the right to copy their software products Wh^ trying to 
dtplicate a software product recorded in a CD-ROM. a 
user or a retailer selling the storage media will send 
their request to the central site After folkiwing some 
necessary procedures for purchasing that subject soft- 
ware product, the requesting user or retailer receives 
identification information issued by the central &\b. The 
subject software product can be duplicated from the 
CD-ROM to the storage medium, only when the 
received identification information coincides with the 
license-specific identificaton information recorded in 
the storage medium. 

But anyone can execute or make access to the soft- 
ware, once It instilled into his/her local sbrage device 
such as a hard drive. This simply means that the 
installed software still is a subject of illegal duplication 
due to the lack of key protection. 

Further. In the aforementioned second method, the 



license-related identification information should be con- 
trolled at the central site in dose liaison with a factory 
where the storage media are manufactured. Another 
prot}lem with the storage media is that it is required to 
5 handle two types of storage media in different ways for 
two distinct purposes: software copying and general 
use. 

SUMMARY OF THE irvMENTION 

Taking the akxive into oonsiderat'on, an object of 
the present invention is to provide a software copying 
system which enables copyrighted data recorded in a 
master storage medium to be copied in a legitimate 
75 manner to a target storage medium that a user can read 
and write to. 

To accomplish the atxive object according to the 
present invention, there is provided a software copying 
s^em for duplicatoig software recorded in a master 

20 Storage medium to a terget storage medium in a legiti- 
mate manner. An authorized copying process is 
achieved through conmunications between an end 
user^ site that is requesting a license of copying tiie 
software product and a central site that manages tfie 

25 license. 

The software coping system comprises the follow- 
ing structural elements. Contents klentffier reading 
means reads out a first identifier the nrtaster storage 
medium This first identifier is unkiuely assigned to the 

30 software product recorded in the master storage 
medium. Storage medium identifier reading means 
reads out a second tdenttfier from the target staage 
medium. This second identifier is uniquely asagned to 
and recorded in the target storage medium. Signature 

35 generating means, which is disposed at the central site, 
generates a first signature from the first identifier read 
out by the contents identifier reading means and the 
second tdenttfier read by the storage medium identifier 
reading means. This first signature serves as a certifi- 

40 cate of a license to copy the software product. Signature 
writing means writes ^e first signature generated by the 
signature generating means into the target storage 
mediura For a verification purpose, signature generat- 
ing/comparing means generates a second signature 

45 from the first identifier read out by the contents identifier 
reading means and the second identifier read out by the 
storage medium identifier reading means. The signa- 
ture generating/comparing means then compares the 
first signature stored in the target storage medium unth 

so the second signature. Data copying means retrieves the 
software product out of the master storage medium arxl 
writes the software product into the target storage 
medium, when the first and secorxi identrfiars turned 
out to be Menfical as a result of the comparison per- 

55 formed by the ^gnature generating/comparing mean& 
To accomplish the above object, there is atso pro- 
vided a software copying method for duplicating soft- 
ware recorded in a master storage medium to a target 
storage medium in a legitimate nrnnner. This software 
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copying method comprises the fbOowing steps. 

First, a storage medium tdentrfier uniquely assigned 
to the terget storage medium and a contents Uentifier 
uniquely assigned to a subject data file are sent from an 
end users site to a central site, together with a message s 
requesting a software license. Second, a first certificate 
code is generated at the central site from the storage 
medium identifier and the contents identifier received 
from the end user site. This step is aoconrplished 
through a ^gnature generating process using a certifi- 10 
cation key that is managed at the central site. Third, an 
enoTpted certification key is generated at tiie central 
site by encrypting the certification key using a user key. 
Fourth, the first cer^icate code and the encrypted certi- 
fication key are sent from the central site to tiie end is 
user's site. Fifth, the first certificate code and the 
encrypted certification key arrived at the end user's site 
from the central site is written into the target storage 
medium. Sixth, a decrypted certification key is obtained 
at the end user*s site by decrypting, using the user key. 20 
the encrypted certif icatbn key stored in the target stor* 
age medium. Sevemh. a second certification code is 
generated, for the purpose of verification at the end 
users site, by applying a signature generating process 
using the decrypted certification key to the storage 2S 
medium kJentif ier and tiie contents klentif ier. Eighth, the 
first certificate code stored In the target storage medium 
is compared with the second certificate code that is 
generated at the end user's site. Lastly, tiie subject data 
file stored in the master storage medum is read out and 30 
written into tiie target storage medium if the first and 
second certificate codes coincide with each otiier. 

The at)ove and otiier objects, features and advan- 
tages of the present invention will become apparent 
from the following description when taken in conjunction 35 
wttii the accompanying drawings which illustrate a pre- 
fen-ed embodiment of tiie present invention by way of 
example. 

BRIEF DESCRI PTION OF THE DRAWINGS 40 

FIQ. 1 is a conceptual view of a software coping 

system according to the present invention; 

FIQ. 2 is afk)wchart showing a software duplication 

process executed by a software copying system in 45 

a first enrtbodiment of the present invention; 

FIQ. 3(A} is a diagram showing the structure of a 

CD-ROM; 

FIQ. 3(B) is a diagram showing the structure of an 
MO disc; so 
FIQ 4 is a diagram showing a procedure of dupli- 
cating copyrighted software; 
FIQ. 5 is a diagram showing the structure of a typK 
cal signature processor; 

FIQ. 6 is a diagram showing a procedure of execut- ss 
ing a duplicated software program; 
FIQ. 7 is a f kMvchart showing a software duplication 
process executed by a software copying system in 
a second embodiment of the present invention; 



FIQ. 8 is a diagram showing a procedure at the cen- 
tral site; 

FIG. 9 is a diagram shoving a procedure at tiie end 
user's site; and 

FIG. 10 is a dtagram showing a procedure of exe- 
cuting a duplicated software program. 

DESCRIPTION OF THE PREFERRED EMBODIMENT 

At the outset, the present invention will be outiined 
with reference to FIQ. 1 , v^tch shows a conceptual view 
of a software copying system according to the present 
invention. 

As seen in FIG. 1, the software copying system of 
the present invention comprises several elements 
descrS>ed below. Contents identifier reading means 2 is 
a means for reading cut a first identifier stored in a mas- 
ter storage medium 1. This first identifier is uniquely 
assigned to each software product recorded in the mas- 
ter storage medium 1. Storage medium kJentifier read- 
ing means 4 reads out a second identifier stored in a 
target storage medium 3. This second identifier is 
uniquely assigned to the target storage medium 3. Sig- 
nature generating means 6. disposed at a central site 5 
that manages licenses for software copying, generates 
a first ^gnature from the first and second identifiers 
read out by tiie contents kientif ier reading means 2 and 
storage medium klentifier reading means 4. respec- 
tively. The first signature serves bs a certificate of a 
license to copy tiie software product Signature writing 
means 7 writes the first signature, which is generated by 
the signature generating means 6. into the target stor- 
age medium 3, Signature generating/conparing means 
8 produces a second signature from the first and sec- 
ond klentifiers respectivdy read out by the contents 
identifier reading means 2 and storage medium identi- 
fier reading means 4. The signature generating/compar- 
ing means 8 compares the first signature stored in tiie 
target storage medium 3 witii tiie second signature tiiat 
is produced. Data coping means 9 retrieves the subject 
software product out of the master storage medium 1 
and writes It into the target storage medium 3. when the 
first and second signatures turned out to be identical as 
a result of the comparison performed by the signature 
generating/comparing means 8. 

The master storage medium 1 contains several 
commercial software products, to each of which a con- 
tents tdentifier is written. The target storage medium 3 
has an individual storage medium identifier which is 
written at the factory before shipment When a user 
selects a software product from among those in the 
master storage medium 1. the contents kient'ifler read- 
ing means 2 retrieves a contents identifier con-e^xind- 
Ing to the selected software product and then the 
storage medium identifier reading means 4 reads out a 
storage medium identifier recorded in the target storage 
medium 3. Those two Identifiers are transndtted to the 
central site 5 together with a purchase order message 
to request a license to copy the subject software prod- 
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ucL At the central site 5, the signature generating 
means 6 receives the contents identifier and storage 
medium tdentifter and sends back to the user a signa- 
ture that Is generated from the received identifiers. This 
signature authorizes the user as a licensee having the s 
right to copy the software product Simultaneously with 
the issue of the signature, the user is registered in a 
user proffle database at the central site 5. and a billing 
process is also invoked. 

At the user skie. upon receipt of the signature sent io 
from the signature generating means 6. the signature 
writing means 7 writes It Into the target storage medium 
3. The signature generating/comparing means 8 then 
locally generates a signature from the contorts klentifier 
retrieved by the contents identifier reading means 2 and is 
the storage medium identifier retrieved k>y the storage 
medium Uentifter reading means 4* The signature gen- 
erating/comparing means 8 compares this si^ature 
with the firstHmentioned signature stored in the target 
storage medium 3. If the two signatures coincide with so 
each other, the data copying means 9 r^rieves the sub- 
ject software product which is stored in encrypted form, 
from the master storage medium 1 and copies it into the 
target storage medium 3. The software now stored in 
the target storage medium 3. however, is not ready for 25 
execution because it is stilt encrypted. The user has to 
load it to file main memory of a special processor which 
decodes and executes tiie encrypted software 

Next, a first embodiment of the present invention 
viM be described below with reference to FIQS. 2 to 6. 30 
The fbllowing explanation assumes such a case that a 
certain cqsyrighted software program distributed in a 
CD-BOM is to be copied into a magneto-optical (MO) 
disc. 

RG. 2 is a f towchart showing a software dupGcation 35 
process perfomned by the software cc^Dying system To 
copy a program in a CD-ROM to an MO disc using the 
software copying system of the present invention, it is 
necessary to follow the steps of: 

40 

[S1] The storage medium identifier iDk recorded in 
the MO disc and the software kJentifier SfDi of the 
subject software program are sent to the central 
site which manages license for software copying. 
[82] This request for the software license is proc- 45 
essed at the central site, where a certificate code 
CS is generated from tiie storage medium identifier 
IDk and software identifier SIDi received from the 
end user sita The central site then sends back the 
certificate code CS to the end user sita so 
[S3] The certificate code CS arrived at tiie end 
user's site is written into a predeternmned storage 
region 01 the MO disc. 

[S4] For a verification purpose, another certificate 
code CS' is generated locally at tiie end user's site. 55 
based on the storage medium identifier IDk and 
software identifier SIDi, which ware sent to the cen- 
tra) sita 

[85] The locally generated certificate code CS' is 



compared with the other certificate code CS stored 
in the MO disc. 

[S6] According to the result of tiie conparison 
between CS and CS\ the process proceeds in dif- 
ferent waya If the two certificate codes are found 
Uentical, the process goes to the next step 37. 0th- 
enMse. the process is terminated without co|:^g 
tiie software program from the CD-ROM to the MO 
disc. 

[S7] An encrypted software datafile having tiie soft- 
ware identifier SIDt is copied from the CD-ROM to 
tiie prepared MO disc. 

FIGS. 3(A) and 3(B) show the structure of records 
in a CD-ROM and an MO disc, respectively The struc- 
tora of a CD-ROM 11 is shown in FIQ. 3(A), where a 
plurality of copyrighted software programs and a man- 
ager application program MA are recorded. The copy- 
righted software programs, stored tn encrypted form, 
have their respective software tdentifiers SIDi 
(/°1 ,2 n). The n^ager application program MA gov- 
erns tiie operations to copy the copyrighted software 
programs from a CD-ROM to an MO disc. Upon request 
for software copying, this program will be loaded into 
and executed on a terminal station (ag., a personal 
computer) located at the end user's ^a That is, the 
manager application program MA is respons93le for tiie 
steps executed at the end user's site as part of the pro- 
cedure shown in RQ. 2. 

FIG. 3(B) is a diagram showing the record 8tru(^re 
of the MO disc 12. where a storage medium identifier 

IDk (/r=1,2 m) is recorded. Although most part of the 

MO disc 1 2 can be freely written and/or read by tiie end 
users, the storage medium identifier IDk is written in a 
special part of the d*^ that Is not rewritable. This stor- 
age medium klentifier IDk may be a serial number 
whtoh is assigned uniquely to each mecOum at tiie fac- 
tory before shipment 

The following desaiption will present a more 
detailed procedure of duplicating copyrighted software 
from a CO-ROM to an MO disc with reference to FIQ. 4. 

FIG. 4 shows a software copying procedure, which 
is roughly di^^ded into two parts: steps at the end user^ 
site (the right haH of FIG. 4) and stef>s at the central site 
(the left half of FIG. 4). At the end user's site, a tenninal 
station (ag., a peraonal computer) performs actual data 
processing jobs pertaining to the software copying, 
wfiile several devices located at the central site man- 
ages Ucense for the software ccpying. Those two sites 
are interconnected by a communication, line or a deliv- 
ery channel. 

The terminal station at the end user's site is 
equipped with a CD-ROM drive and an MO drive (botii 
not shown). The CD-ROM 1 1 . serving as a master stcH-- 
age medium that stores copyrightoj software progranrts, 
is inserted in the CD-ROM drive. On the otiier hand, the 
MO disc 12 serving as a target sttsuge medium is 
foaded in tiie MO driva The subject software program in 
the CD-ROM 1 1 has a software identifier SIDi, and the 
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MO disc 12 owns its unique storage medium identifier 
/D/c. 

Rrsl of all, at the end user^ terminal statioa the 
manager application program MA In the CD-ROM 1 1 
starts with accepting a request from the end user for s 
coping a specific software program. Upon this request, 
the marmger application program MA reads out the cor- 
responding software identifier SlDi from the CD-ROM 

11 as well as extracting the storage medium identrtier 
IDk from the MO disc 1 2. Those two identifiers are then w 
sent to the software license center along with a request 
message containing information necessary for a soft- 
ware license. 

The central - sKe receives the above-described 
request from the user and saves the contents of the is 
request into a user profile database 13. The received 
software identifier SlDi and storage mecBum identifier 
IDk are supplied to a signature processor 1 4, where the 
identifiers SlDi and IDk are compressed into a certifi- 
cate code CS. In this compres^on process, a certiftca- 20 
tion key KEYc operates as a private key (or secret key). 
The produced certificate code CS will serve as what is 
refened to as the "signature" in FIG. 1 . The certification 
key KEYc used by the signature processor 14 is frien 
directed to an encryption unit 1 5 to be enaypted with a 25 
user key KU, tiius producing a dphertext EKU(KEYc). 
The certificate code CS generated by the signature 
processor 14 and the c?)hertext EKU(KEYc) generated 
by tiie encryption unit 1 5 are finally transnntted together 
with the central site klentifier IDc to the end user's site 30 
as a response to the request from the end user. 

At the end user's site, the tern^nal station extracts 
the certificate code CS and dphertext EKU(KEYc) from 
anrx)ng the information received from the central site 
and writes them into the target MO disc 12. The certifi- 3s 
cate code CS and dphertext EKU(KEYc) recorded in 
the MO disc 12 are retrieved and sent to the manager 
application program. 

Then, in the temiinal station, a signature verifica- 
tion process starts. Rrst, a decryption unit 16 decodes 4o 
the dphertext EKU(KEYc) using the user key KU and 
extracts tiie certification key KEYc, which was once 
encrypted at the central site. Out of the software identi- 
fier SlDi retrieved from the CD-ROM 1 1 and tiie storage 
medium WentiTier IDk retrieved from tiie MO disc 12. a 45 
signature processor 17 generates a certificate code CS' 
for verification at the end user's sita The certification 
key KEYc dewypted by the decryption unit 1 6 is used in 
this CS' generation process. Then, a comparator 18 
conrpares tiie certificate code CS written in the MO disc so 

12 and the certificate code CS* generated by the signa- 
ture processor 17. If the comparison result indicates 
coinddenoe of the two codes CS and CS\ a switch 19 
win enable the software program having the software 
identifier SlDi to be written into the target MO disc 12 in 55 
the form of enaypted data. 

The following description will present a typical func- 
tion achieved tiy Uie signature processor 14 at the cen- 
tral site and the signature processor 1 7 at the end user's 



site. 

FIG. 5 illustrates the structure of the signature proc- 
essor, which consists of an exctusive OR logic 21 and 
an encryption unit 22. The exdusive OR logic 21 per- 
forms an exclude OR operation on a software identifier 
SlDi, storage medium kJentif ier IDk and certif k»te code 
CS. The encryption unit 22 enaypts the output of tiie 
exclusive OR logic 21 witii the certtfication key KEYc to 
produce the certifk»te code CS. Those two elements 

21 and 22 thus constitutes a hash function operator. 

In a blodc-by-biock manner, the encryption unit 22 
encrypts the software Identifier SlDi and storage 
medium id&nif ier IDk with tiie certification key KEYc, 
The encrypted output data is fed back to the input of tite 
exdusive OR logic 21 and directed to the exclusive OR 
operation woth the next block data. The output of the 
exclusive OR logic 21 is then encrypted by the encryp- 
tion unit 22 again. The atx>ve operations are repeated 
until the final block is entered, and tiie result of ttiis 
cydic computation will come out of the encryption unit 

22 as a certificate code CS when the encryption of tiie 
final block is finished. 

The licensed software program is copied to the MO 
disc 12 in the way descrft)ed above, but tiie end user 
cannot run it as te, because the program is still 
encrypted. The following description will explain how it 
will be executed. 

FIG. 6 shows a procedure of executing a duplicated 
software program. The MO disc 12 contains the certift- 
cate code CS, dphertext EKU(KEYc), storage medium 
identifier IDk, and software identifier SlDi, as well as 
storing the duplicated software in the form of encrypted 
data EKd(DATA}. This encrypted data EKd(DATA) was 
encrypted with a key KiGf before tiie software was 
stamped to tiie CD-ROM, and the encryption key Kd is 
under ttie management of ttie manager application pro- 
gram. 

The temiinal station at tiie end user's site first 
retrieves from ttie MO disc 12 tiie certificate code CS. 
dphertext EKU(KEYc), storage medium identifier IDk, 
and software identifier SlDi. The decryption unit 16 
decrypts the dphertext EKU(KEYc) witii the user key 
Ku, thereby extracting the certiftcation key KEYc. Then 
the signature processor 17 generates another certifi- 
cate code CS' from tiie software identifier SlDi and stor- 
age medium identifier IDk retrieved from the MO disc 
12. using the certification key KEYc decrypted by ttie 
decryption unit 16. Subsequentiy, ttie comparator 18 
compares the certificate codes CS arxj CS'. If the com- 
parison indicates coinddence of the two codes CS and 
CS\ the switch 19 wtO allow an encrypted data file 
EKd(DATA) containing the encrypted software program 
to pass through to a detayption unit 25. The deayption 
urat 25 decrypts ttie encrypted data file EKd(DATA) 
using the key Kd ttiat is owned by tiie manager appfica- 
1am program, ttius restoring the original plaintext data 
fQe DATA, The contents of ttiis decrypted data ffle DATA 
can be executed by the central p'ocessing unit (CPU) 
after being loaded to ttie memory, both of which are part 
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of a CPU/memory urat 26 in the terminal station. 

Next, a second embodiment of the present inven- 
tion will be desoribed below wrth reference to FIGS. 7 to 
10. In the second embodiment, each software program 
recorded in a CD-ROM has a software identifier DfD s 
uniquely assigned thereto, and its corresponding data 
file Data is stored as an encrypted data file EKd{Data), 
This encrypted data file EKd(DATA) has been created 
with a master medium conversion key Ka gen&Bted 
from the software identifi^ DID and a naster key KM, io 
which is managed at a software license center. The soft- 
ware license center is in charge of licensing of the right 
to copy their commercial software products. Regarding 
the target storage media, the user's MO disc has a 
serial number ser>dng as a storage medium identifier is 
Mid. 

FIG. 7 is a flowchart showing a software dupfication 
process performed under the alcove assumption by the 
software copying system of the second embodiment 

To obtain a copy of a software program distr&uted so 
in a CD-ROM, it is necessary to go through the following 
seven steps: 

[811] The storage medium identrfler Mid recorded 
in the target MO cfisc and the sctftware identifier 25 
DID of the subject software program in the CD- 
ROM are sent from the end user^ site to the soft- 
ware license center, wtiich controls the license to 
copy the software products. 

[S12] At the software license center, it is tested so 
whether the software identifier DID is registered 
therein or not 

[Si 3] The storage medium identifier Mid and soft- 
ware iden«ier DID are encrypted with the nrtaster 
key KM managed in the software license center, 35 
thus generatirig a storage medium conversion key 
Ku and master medium conversion key Ka, respec- 
tively. 

[S14] A dphertext EMid(Ku,Ka} is generated by 
encrypting those storage medium and master 4o 
medium conversion keys Kb and Ka using the stor- 
age medium identifier Mid, The dphertext 
EMid(Ku,Ka) is sent to tiie end user's site as a 
response message to the request 
[8151 The end user's site obtains the storage 45 
medium conversion key Ku and master medium 
conversion key Ka by decrypting the received 
ctphertext £Mid(Ku,Ka} with the storage medium 
identifier Mid, while storing a dphertext EMid(Ku), 
i.e., MO disc-related part of the dphertext so 
EMid(KusKa), without attempting decryption. 
[816] With the master medium conversion key Ka 
obtained in step 815, the encrypted data file 
EKd(Data} in the CD-ROM which corresponds to 
the software identifier DID is decrypted to restore 55 
the original plaintext data file Data. 
[817] The plaintext data file Data is encrypted 
again with the storage medium conversion key Ku 
obtained in step SI 5, and the encrypted data file is 



stored into the MO disc, thus finalizing the software 
duplication process. 

The above-described software duplicat'on proce- 
dure will be dscussed tn more detail below. In the sec- 
ond embodiment of the present invention, the 
procedure starts at the end user's site with sending a 
request to the software license center, which part of the 
procedure consists of only two things as follows. One is 
to read out the storage medium identifier Mid of the tar- 
get MO disc and the software identifier DID of the sub- 
ject software stored in the CD-ROM, and the other Is to 
send these Identifiers Mki and DID to the software 
license center. The tollowing desc^qstion sfgps those two 
steps and will begin with the steps executed by the soft- 
ware license center which has received the above 
request from the end user^ site. 

FIG. 8 explains the procedure executed at the soft- 
ware license center. Upon receipt of the two identifiers, 
Mid and DID, from the end user's site through a com- 
munications line, the software license center fbnwards 
the storage medium identifier Mid to an encryption unit 
31 having the master key KM under the control of the 
center, as well as supplying the software identifier DID 
to a comparator 32. The encryption unit 31 encrypts the 
storage medium identifier Mid using the master key KM 
to produce a storage medium conversioii key Ku. The 
comparator 32, on the other hand, searches a contents 
identifier file 33, comparing each entry with the received 
software identifier DID to verify its vaTidity. If the 
received software identifier DID coinddes with the one 
registered in the contents identifier file 33, the compara- 
tor 32 doses a swntch 34, thus allowing the software 
identifier DID to enter to an encryption unit 35 having 
the master key KM. The encryption unit 35 encrypts the 
software identifier DID with the master key KM to create 
a master medium conversion ksy Ka. The storage 
medium conversion key Ku produced by the encryption 
unit 31 and the master medium conversion key Ka pro- 
duced by the encryption unit 35 are then entered to an 
encryption unit 36 tor further encryption using the stor- 
age medium identifier Mid. A dphertext EMid{Ku,Ka) 
produced by the encryption unit 36 is transferred to the 
requesting end user tftrough the communications line. 
Upon completion of the above processing steps, a 
requ^ for billing is issued to the user profile database 
37 and ^e cost is charged to the requesting end user. 

FIG. 9 explains the procedure at the end user's site 
after the above-described process is finished at the soft- 
ware license center. The ciphertext £Mid(Ku,Ka) 
received from the software license center Is applied to a 
decryption unit 51, while a dphertext EMid(Ku) as part 
of the received dphertext EMid(Ku,Ka) is vimtten into a 
predetenmined region 41 in the target MO disc 40. The 
decryption unit 51 decrypts the dphertext EMid(Ku,Ka) 
using the storage medium identifier Mid extracted from 
the MO disc 40, thus restoring the original storage 
medium conversion key Ku and master medium conver- 
sion key Ka. This restored master medium conveiston 
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key Ka is then entered to a decryption unit 52 as its 
decryption key, while the restored storage medium con- 
version key Ku is enter^J to an encryption unit 53 as its 
enoyption key. The decryption unit 52 retrieves the 
encrypted data file EKa(Data} that corresponds to the 
software identifier DID in the CD-ROi\/1 60 and decrypts 
it with the master medium conversion key Ka, thus 
restoring the original plaintext data file Data, This data 
f Oe Data is encrypted again by the encryption unit 53 
with the storage medium conversion key Ku, and the 
resultant ciphertext EKu(Data} is written into the target 
MO disc 40. 

In the way described above, the Qphertext 
EKu(Data) is written into the MO disc 40 through the 
process using two conversion keys derived from a 
unique identifier recorded in the MO disc 40 and a mas- 
ter key under the control of the software license center. 
Next, a procedure to execute this encrypted data file 
EKu(Data) will be described below. 

Fia 1 0 illustrates a procedure of executing the soft- 
ware program that is duplicated as a data file in the MO 
disc 40. The dphertext EMid(Ku) is stored in a section 
41 as part of the rewritat>le region in the MO disc 40, 
while the storage medium identifier Mid is recorded in a 
non-rewrftable regbn 42. The encrypted data file 
EKu(Data) is stored in a section in the remaining rewri- 
table region. When the program In the encrypted data 
file EKu(Data} is called up for execution, the storage 
medium kJenlrfier Mid and dphertext EMid(Ku) are 
retrieved from the MO disc 40 and entered to a decryp- 
tion unit 54. Using the storage medium identifier Mid as 
the decryption key, the decryption unit 54 decrypts the 
dphertext EMid(Ku) to restore the storage medium con- 
version k^ Ku. Another decryption unit 55 then 
decrypts the encrypted data file EKu(Data) retrieved 
from the MO cfisc 40, using the storage medium conver- 
sion key Ki/ as the decryption key. The resultant plain- 
text data file Da^ will be executed after bdng loaded to 
the main memory of a personal computer that is work- 
ing as the end users terminal station. 

The above discussion will be summarized as fol- 
lows. According to the present invention, the software 
copying system comprises signature generating means, 
disposed at the central site, for generating a »*gnature 
from information that identifies the target storage 
medium and subject data stored in the master medium. 
The system also comprises, at the end user^ ^e, sig- 
nature writing means for writing the dgnature generated 
by the signature generating means into the target stor- 
age medium, signature generating/comparing means 
for comparing a signature that is locally generated at the 
end user's ste with the ^gnature written in the target 
storage mediiOTi, arxJ data copying means for copying 
the sut^ject program to the target storage medium 
according to the result of comparisoa Therefore, the 
central site only has to issue a signature assodated with 
the kientifier of the target storage iDedium, and there is 
no need to manage any license-specific information in 
dose liaison with factories of the storage medium man- 



ufac^rers. This also eGminates the stock oorttrd in the 
manubcturers and retailers for the storage media to be 
used in software copying. 

The foregoing is consklered as iQustrative only of 

5 the principles of the present invention. Further, since 
numerous modifications arKi changes will readily occur 
to those stalled in the art. it is not desired to limit the 
invention to the exact construction and applications 
shown and described, and accordingly, aU suitable wo6- 

10 ifications and equivalents may be regarded as falling 
within the scope of the invention in the appended claims 
and tiieir equivalents. 

Claims 

IS 

1« A software copying system for duplicating softwvare 
recorded in a master storage medium (1) to a target 
storage medium (3) In a legitimate manner 
achieved through communications between an end 
20 user's site that is requesting a license of copying 
the software and a central site (5) tiiat manages the 
license, the software copying system comprising: 

contents kJentif ier reading means (2) for read- 
25 ing out a first id^itifier (SlOi) from the master 

storage mecfium (1). said first identifiers (SIDi) 
being uniquely assigned to the software pro- 
gram recorded in tiie master storage medium 

(1) : 

30 Storage medium kJentifter reading means (4) 

for reading out a second kJentifter (IDI^ from 
the target storage medium (3), the second 
identifier (IDk) being uniquely assigned to tiie 
target storage medium (3); 
55 signature generating means (6). disposed at 

the central site (5). for generating a first signa- 
ture from the first identifier (SlDt') read out by 
said contents identifier reading means (2) and 
the second identifier (IDl^ read out by said stor- 
40 age medium identifier reading means (4), tiie 

first signature serving as a certificate of a 
license to copy the software program; 
^gnature writing means (7) for writing the first 
^gnature generated by said signature generat- 
es ing means (6) into tiie target storage medium 

(3) : 

signature generating^comparing means (8) for 
generating a second signature, for a verifica- 
tion purpose, from the first identifier (SIDi) read 
so out by said contents kJenlifier reading means 

(2) and tiie second identifier (IDk) read out by 
said storage medium identifier reading means 

(4) , and comparing the first signature stored in 
the target storage medium (3) with the second 

55 signature; and 

date copying means (9) for retrieving the soft- 
ware program out of tite master storage 
mecfum (1) and writing the softrare program 
into the target storage medium (3), when tiie 
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firBt and seoorxJ identrfiers turned out to be 
identical as a result Off the comparison per- 
formed by said signature generating/compar- 
ing means (8). 

5 

2. A softvware copying system according to daim 1, 
wherein said ^gnature generating means (6) com- 
prises 

signature processing means (14) for encrypting io 
the first identrfier (SIDQ read by said contents 
(denttfier reading means (2) and tiie second 
identifier (IDk) read t>y said storage medium 
Identifier reading means (4) using a certifica- 
tion key (KEYc) managed at the central site (5), is 
to produce a certificate code (CS) tiiat sen^s 
as the first signature, and 
encrypting means (15) for encrypting the certi- 
fication key (KEYc) using a user key (KU) reg- 
istered at the central ^te (5). and sending the so 
encrypted certtfication key (EKU (KEYc)) for 
use in said signature generating/conparing 
means (8) to generate the second signature. 

3. A software coping system according to claim 2. 2S 
wherein said signature generating/comparing 
means (8) conprises 

deaypting means (16) for decrypting tiie 
encrypted certification key (EKU(KEYc)) using 30 
the user key (KU). which is registered at the 
central site (5), to produce a decrypted certifi- 
cation hey, 

certificate code generating means (1 7) for gen- 
erating anottier certificate code (CS*) for verif i- 35 
cation, which will serve as the second 
signature, by encrypting tiie first identifier 
(SIDi) read by saki contents identifier reading 
means (2) and tiie second identifier (IDI^ read 
by said storage medium identifier reading 40 
means (4) using the decrypted certification key 
(KEYc), and 

conparing means (18) for comparing the certif- 
icate code (CS*) for verification generated by 
said certificate code generating means (17) 45 
vynth the certif k»te code (CS) stored as ttie first 
signature in tiie target storage medium (3). 

4. A software copying method for duplicating software 
recorded in a master storage medium (1) to a target so 
storage medium (3) in a legitimate manner 
achieved through convnunications between an end 
user's site tiiat is requesting a license to copy the 
software and a central site (5) ttiat manages tiie 
license, tiie software copying method comprising ss 
the steps of: 

sending from the end user's site to tiie central 
site a storage medium identifier (IDI^ tiiat is 



uniquely assigned to the target storage 
medium (3) and a contents identifier (SIDi) that 
is uniquely assigned to a subject data file, 
togetiier witti a message requesting a software 
license; 

generating at tiie central site (5) a first certifi- 
cate code (CS) from tiie storage medium iden- 
tifier (IDk) and tiie contents identifier (SIDi) 
received from ttie end user sito, through a sig- 
nature generating process using a certification 
key (KEYc) tiiat is managed at the central site 
(5); 

generating at ttie central site (5) an encrypted 
certification key (EKU(KEYc)) kyy encrypting 
tiie certification key (KEYc) u^ng a user key 
(KU); 

sending from tiie cenlral site (5) to ttie end 
user's site the first certificate code (CS) and tiie 
encrypted certification key (EKU(KEYc)); 
writing at the end user*8 site the first certificato 
code (CS) and tiie encrypted certifkation key 
(EKU(KEYc)) received from the central site {Si 
into the target storage medum (3); 
obtaining at the end user's site a decr^ted cer- 
tification key (KEYc) ksy decrypting the 
encrypted certification key (EKll(KEYc)), 
which is stored in the target storage medium 
(3), using the user k^ (KU); 
generating at tiie end user*^ site a second cer* 
tification code (CS*) for a verification purpose 
by applying a signature generating process 
using the decrypted certification key (KEYc) to 
the storage medium identifier (IDl^ and tiie 
contents kJentifier (SIDi); 
comparing the first certificate code (CS) stored 
in the target storage medium (3) until tiie sec- 
ond certificate code (CS*) tiiat is generated at 
tiie end user's site; and 

reading out the subject data file stored in tiie 
master storage medium (1) and writing tiie sub- 
ject data file into the target storage medium (3) 
if the first and second certifk»te codes 
(CSiCS*) odndde with each other. 

A software copying system for duplicating software 
recorded in a master storage medium (60) to a tar- 
get storage mecfium (40) in a legitimate manner 
achieved through communications between an end 
user's site that is requesting a license to copy the 
software and a central dte (5) that manages the 
license, the software copying system comprising: 

contente kietm& reading means (2) for read- 
ing a first klentifier (DID) uit'quely assigned to a 
software product, which are both recorded \n 
the master storage medium (60); 
storage medium Ment'ifier reading means (4) 
for reading a second kjentffier (^/Ild) uniquely 
assigned to tiie target storage medium (40) 
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and recorded therein: 

conversion key generating means (31, 35, 36). 
disposed at the central (5), for generating a 
storage medium conversion key (Ku} from the 
second Identifier (Mid) read by saki contents s 
identifier reading means (2). generating a mas- 
ter medium conversion key (Ka) from the first 
identifier (DID) read by said storage medium 
identifier reading means (4), and generating an 
encrypted storage medium conversion key io 
(EMtd(Ku)) and an encrpyted master medium 
conversion key (EMid(Ka)) by respectively 
enoTpting the storage medium conversion key 
(Ku) and the master medium conversion key 
(Ka) using the seond identifier (Mid) ; 75 
conversion key writing means for writing the 
encrypted storage medium conversion key 
(EMid(Ku)) generated by said conversion key 
generating means (31. 36} into the target stor- 
age medium (40); 20 
conversion key decrypting means (51) for gen- 
erating a decrypted storage medium conver- 
sion key {\<u) and a decrypted master medium 
conversion key (Ka) by respectively decrypting, 
using the second tdentif ter (Mid) read by said 25 
storage medium kjentifier means (4). the 
encrypted storage medium ccmversion key 
(EMid(Ku)) and the encrypted master medium 
conversion key (£Mid(Ka)) generated by said 
conversion key generating means (31 , 35, 36); so 
data decryiiAing means (52) lor reading out the 
target data file (EKa(Data)) recorded In the 
master storage medium (60) and producing a 
plaintext data file (Data) by decrypting the tar- 
get data file (EKa(Data)) using the deaypted 3S 
master medium conversion key (Ka) generated 
by said conversion key decrypting means (51); 
and 

data writing means (53) for producing an 
encrypted data file (EKu(Data)) by otcrypting 4o 
the plMext data file (Data) using the 
decrypted storage medium conversion key (Ku) 
generated by said conver^on key deaypting 
means (51) and writing tiie encrypted data file 
(EKu(Data)) into the target storage medium 45 
(40). 

A software copying system according to daim 5. 
wherein saki conversion key generating means (31, 
35, 36) comprises so 

first encrypting means (31) for generating tfie 
storage medium conversion key (Ku) by 
encrypting tiie second Identifier (Mid) read out 
by said contents identifier reading means (2). 55 
using a master (KM) that Is managed at the 
central site (5); 

second encrypting means (35) for producing 
the master medium conversion k^ (Ka) by 



encrypting the first identifier (DID) read out by 
said storage medium identifier reading means 
(4), using the master key (KM); and 
third enaypting means (36) for produdng the 
encrypted storage medium conversion key 
(EMid(Ku)) and the encrypted master medium 
conversion key (EMid(Ka)) by encrypting tiie 
stor^e medium conversion key (Ku) and the 
master medium conversion key (Ka) using the 
second identifier (Mid) read out by said con- 
tents Identifier reading means (2). 

A software copying system for duplicating a subject 
data file recorded in a master storage medium (60) 
to a target storage medium (40), the subject data 
file being encrypted wrtii a master medium conver- 
sion key (Ka) produced from a contents identifier 
(DID) to identify software products and a nrtaster 
key (KM) managed at a central site (5) which deals 
licenses to copy software products, the software 
copying system comprising the stops of: 

serxfng from the end user's site to the central 
site (5) a contents identifier (DID) tiiat is 
uniquely assigned to the subject data file and a 
storage medium kientif ler (Mid) that is uniquely 
as^gned to tiie target storage medium (40); 
producing at the central site (5) a master 
medium conversion key (Ka) and a storage 
medium conversion key (Ku) by respectively 
encrypting the contents identifier (DID) and the 
storage medium kjentifier (Mid) using a master 
key (KM) managed at tiie central site (5); 
generating an encrypted storage medium con- 
version key (EMid(Ku)) and an encrypted mas- 
ter medium conver^on key (EMid(Ka)) by 
respectively encrypting tiie storage medium 
conversion key (Ku) and tiie naster medium 
conversion key (Ka) using the storage medium 
Identifier (Mid): 

sending from the central site (5) to tiie end 
user's site the encrypted master medium con- 
version key (EMid(Ka)) and tiie encrypted stor- 
age medium conversion key (EMid(Ku)); 
writing tiie encrypted storage medium conver- 
^on key (EM[d(Ku)) Into the target storage 
medum (60); 

generating a decrypted storage medium con- 
version key (Ku) and a decrypted master 
medium conversion key (Ka) by respectively 
decrypting tiie encrypted storage medium con- 
version key (EMid(Ku)) and the encrypted mas- 
ter medium conversion toy (EMid(Ka)) u^ng 
the storage medium Uentifier (Mid); 
decrypting the subject data file (EKa(Data)) 
recorded in tiie master ^rage medium (40) to 
prxxluce a plaintext data file (Data) by decrypt- 
ing tiie target data file (EKa(Data)) using tiie 
decrypted master medium conversion key (Ka); 
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produdng an enaypted data file (EKu(Data)) 
by encrypting the plaintext data file (Data) 
using the decrypted storage medium conver- 
sion key (Ku); and 

writing the encrypted data file (EKu(Data}) into 5 
the target storage medium (60). 
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